giles
984ef9c65e
All checks were successful
Build and Deploy / build-and-deploy (push) Successful in 2m25s
Two issues fixed: - Sessions with uid but no grant_token (legacy or corrupt) were not validated at all, allowing a user to be logged in as whoever got their old numeric user ID after a DB rebuild - DB errors during grant verification silently kept stale sessions alive; now treated as invalid to fail-safe Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
11 KiB
11 KiB